Frox
by Frox
CVEs (3)
| CVE | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2005-2807 | 0.03 | — | 0.00 | Sep 7, 2005 | frox 0.7.18, when running setuid root, does not properly drop privileges when reading a configuration file, which allows local users to read portions of arbitrary files via the -f command line option. | ||
| CVE-2005-2808 | 0.00 | — | 0.00 | Sep 7, 2005 | frox 0.7.16 and 0.7.17 does not properly parse certain Deny ACLs, which might allow attackers to bypass intended restrictions and access blocked hosts. | ||
| CVE-2001-0936 | 0.00 | — | 0.01 | Nov 30, 2001 | Buffer overflow in Frox transparent FTP proxy 0.6.6 and earlier, with the local caching method selected, allows remote FTP servers to run arbitrary code via a long response to an MDTM request. |
- CVE-2005-2807Sep 7, 2005risk 0.03cvss —epss 0.00
frox 0.7.18, when running setuid root, does not properly drop privileges when reading a configuration file, which allows local users to read portions of arbitrary files via the -f command line option.
- CVE-2005-2808Sep 7, 2005risk 0.00cvss —epss 0.00
frox 0.7.16 and 0.7.17 does not properly parse certain Deny ACLs, which might allow attackers to bypass intended restrictions and access blocked hosts.
- CVE-2001-0936Nov 30, 2001risk 0.00cvss —epss 0.01
Buffer overflow in Frox transparent FTP proxy 0.6.6 and earlier, with the local caching method selected, allows remote FTP servers to run arbitrary code via a long response to an MDTM request.